Industry - Data Breach
Executive Summary
LastPass customers had their names, contact details, physical addresses, and customer support case records stolen when hackers breached Klue, a market research firm that LastPass uses as a technology partner. While LastPass's own systems and password vaults were not compromised in this incident, the stolen support tickets may contain fragments of sensitive information such as credentials or identity documents that customers shared while seeking help. This marks the latest breach affecting Las...
What Happened
LastPass notified customers on June 23, 2026, that their personal information and customer support case records were stolen when hackers breached Klue, a market research firm used by LastPass as a technology partner. The breach at Klue, which was detected on June 12, 2026, resulted in the theft of LastPass customer names, phone numbers, email addresses, physical addresses, and customer support case data. A hacking and extortion group called Icarus has claimed responsibility for the attack and threatened to release the stolen data if their ransom demands are not met.
Who Is Affected
LastPass customers whose information was stored by Klue are affected, though the exact number has not been disclosed by LastPass or Klue. As of 2024, LastPass had more than 33 million users and around 1.6 million paying customers. The stolen customer support tickets may contain fragments of sensitive information such as credentials or government-issued identity documents that customers shared when seeking billing assistance or account access help.
Why It Matters
This incident highlights the privacy risks that extend beyond a company's direct infrastructure to include third-party vendors and technology partners. Customer support tickets often contain sensitive personal details, and their exposure creates potential risks for identity theft, phishing attacks, and account takeover attempts. For LastPass specifically, this marks another significant breach following their 2022 incident where customer password vaults were stolen, raising ongoing concerns about the company's overall security posture and partner vetting processes.
What You Should Do
LastPass customers should immediately enable multi-factor authentication on their accounts if not already active, and monitor their email and phone for phishing attempts that may reference details from stolen support tickets. Change passwords for any accounts where credentials may have been shared in customer support communications with LastPass. Review recent account activity and financial statements for unauthorized access, and consider placing fraud alerts with credit bureaus if identity documents were submitted to LastPass support.
Summary generated from verified sources and reviewed before publication. How we summarize.
Related Events
- Industry - Data BreachJun 22, 2026
Market intelligence provider Klue suffered a data breach after hackers used comp...
- Industry - Data BreachJun 18, 2026
Threat actors exploited a security breach at market intelligence platform Klue t...
- Industry - Data BreachJun 23, 2026
LastPass confirmed that hackers accessed customer data from its Salesforce envir...